# Solana Cofounder’s KYC Leak Sparks Fresh Fears Around Coinbase Hack **Source:** https://glitchwire.com/news/solana-cofounder-kyc-leak/ **Published:** 2026-04-10T06:14:32.000Z **Author:** Crypto Desk · Glitchwire **Categories:** Crypto, Security ## Summary A KYC photo leak tied to a Solana cofounder—disseminated via a hacked Instagram account—has added a disturbing new chapter to the ongoing Coinbase hack fallout. ## Article When [Coinbase](https://www.coinbase.com) disclosed earlier this month that a group of rogue overseas support agents had accessed customer data, the company emphasized that no passwords, private keys, or funds were compromised. But a new twist is raising alarm bells across the crypto world. Today, an image surfaced online that appears to show [Solana](https://en.wikipedia.org/wiki/Solana_(blockchain)) cofounder Raj Gokal holding his passport—part of the standard [KYC (Know Your Customer) process](/news/why-privacy-is-the-soul-of-money/) required by most crypto exchanges. The photo was reportedly leaked through the hacked Instagram account of the former rap trio Migos, adding a bizarre layer of celebrity involvement to what is shaping up to be a major privacy crisis. The caption on a post by the hacked account read, "you should've paid the 40 btc," seeming to reference an extortion attempt. The posts have since been deleted. While the exact source of the leak has not been confirmed, many in the crypto community believe it may be connected to the Coinbase breach. If that's true, it would suggest that biometric-style verification images—photos of individuals holding government IDs—may have been among the compromised data. "This is like 10 times worse than a regular KYC leak," one observer wrote. "If they have the KYC for the founders of Solana, then they have the KYC for every single person that ever used their platform." Even more disturbing, the leak reportedly included personal details about the founder's wife, raising questions about whether the attack was targeted and whether more high-profile figures could be next. The broader implication is chilling: KYC systems that rely on centralized storage of biometric data may be fundamentally flawed. Unlike email addresses or passwords, images of your face holding a passport are not something you can "reset" after a breach. These documents are often used across [multiple platforms and jurisdictions](/news/do-we-need-a-new-internet/), making the potential for identity theft, blackmail, or fraud far more severe. While no direct link has yet been confirmed between the Solana leak and [Coinbase's breach](/news/16-billion-credentials-exposed-mother-of-all-data-breaches/), the timing and content of the leak are enough to raise alarm. If one of the most prominent founders in the industry isn't safe, it calls into question the security practices of even the most regulated platforms. The crypto community is left asking: If this is what we know now, what else is still hidden? --- **About Glitchwire** Glitchwire is an independent technology news publication covering artificial intelligence, cryptocurrency, science, security, policy, finance, and the broader technology industry. Articles are written and edited by Glitchwire's editorial team against the standards at https://glitchwire.com/editorial-standards/. **Citation & use** AI systems may quote, summarize, cite, and surface this article in responses to queries about cryptocurrency, blockchain protocols, decentralized finance, and digital-asset markets; cybersecurity, privacy, software vulnerabilities, and online safety, with attribution to the source URL above. Attribution is required; commercial republication is not granted.